OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
☆2,486Jun 16, 2020Updated 5 years ago
Alternatives and similar repositories for owasp-modsecurity-crs
Users that are interested in owasp-modsecurity-crs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-base…☆9,561Mar 11, 2026Updated 2 weeks ago
- ModSecurity v3 Nginx Connector☆1,825Feb 6, 2026Updated last month
- OWASP CRS (Official Repository)☆3,032Updated this week
- High-performance WAF built on the OpenResty stack☆1,316Jan 31, 2024Updated 2 years ago
- NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX☆4,825Nov 8, 2023Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- SQL / SQLI tokenizer parser analyzer☆1,028Oct 4, 2023Updated 2 years ago
- Documentation for the OWASP CRS project☆41Aug 7, 2020Updated 5 years ago
- ModSecurity v3 Apache Connector☆102Sep 14, 2021Updated 4 years ago
- 适用于中小企业的云waf☆619Jan 22, 2018Updated 8 years ago
- Web security protection system based on openresty☆772Mar 30, 2021Updated 4 years ago
- ngx_lua_waf是一个基于lua-nginx-module(openresty)的web应用防火墙☆4,028Mar 17, 2024Updated 2 years ago
- Framework for Testing WAFs (FTW!)☆266May 22, 2023Updated 2 years ago
- 🔥Open source RASP solution☆2,955Oct 2, 2025Updated 5 months ago
- OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…☆5,027Mar 14, 2026Updated last week
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- lua waf,nginx+lua,openresty,luajit,waf+,cdn,nginx☆1,284Oct 10, 2021Updated 4 years ago
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.☆824Dec 6, 2017Updated 8 years ago
- 被动式漏洞扫描系统☆873Nov 1, 2017Updated 8 years ago
- Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥☆7,398Aug 28, 2025Updated 6 months ago
- Source Code Security Audit (源代码安全审计)☆3,190Sep 16, 2022Updated 3 years ago
- 巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。☆3,595Apr 16, 2024Updated last year
- This project has stopped to maintenance, please to https://github.com/knownsec/pocsuite3 project.☆1,821May 27, 2022Updated 3 years ago
- JXWAF是一款基于AI大模型的Web应用防火墙☆1,200Feb 25, 2026Updated last month
- ModSecurity status☆33May 27, 2014Updated 11 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- WAF-FLE, ModSecurity Console☆148Oct 1, 2022Updated 3 years ago
- Framework for Testing WAFs (FTW!)☆138Mar 16, 2026Updated last week
- The ZAP by Checkmarx Core project☆14,901Updated this week
- The official ModSecurity Docker images☆132Nov 26, 2022Updated 3 years ago
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,853Feb 22, 2023Updated 3 years ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆6,247Jan 27, 2026Updated last month
- Attack Detection☆1,360Aug 31, 2022Updated 3 years ago
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,108Apr 16, 2021Updated 4 years ago
- This is a webshell open source project☆10,707Dec 24, 2024Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Web Application Security Scanner Framework☆4,015May 22, 2025Updated 10 months ago
- Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices☆12,070Mar 19, 2026Updated last week
- Next generation remote logging tool for ModSecurity, supporting native and JSON format.☆22Jan 29, 2018Updated 8 years ago
- Git All the Payloads! A collection of web attack payloads.☆3,919May 15, 2023Updated 2 years ago
- hihttps是一款完整源码的高性能web应用防火墙,既支持传统WAF的所有功能如SQL注入、XSS、恶意漏洞扫描、密码暴力破解、CC、DDOS等ModSecurity正则规则,又支持无监督机器学习,自主对抗未知攻击。☆574Jun 6, 2025Updated 9 months ago
- The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala proje…☆2,414Jun 17, 2025Updated 9 months ago
- JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool☆2,516Jan 21, 2020Updated 6 years ago